Tag Archives: tcpip

The weather is cooler today (about 10° cooler than the norm, according to the local station), and the walk over from the hotel (about 5-10 minutes) was a great way to start the day. I actually read the schedule, and went to the right place for breakfast today (almost missed it yesterday!), and got caught up somewhat on blogging and news.

My first tutorial was “PHP: Architecture, Scalability, and Security” by Rasmus Lerdorf. Rasmus, who created PHP, is always inspiring when he talks about the internals of PHP, and using available tools for getting under the hood of what your code is doing at the system call level, and getting optimizations that you might never have thought of. The first part of this talk was a refresher for me of what he talked about last year, but I never get tired of listening to him, mostly I think because his philosophy toward writing PHP is very similar to mine (or vise-versa: I don’t mean to sound egotistical; Rasmus could code circles around me). If nothing else, this talk is entertaining: Rasmus runs a web vulnerabilities scanner of his own making against various websites, starting with the conference site. This year, the talk got a visit from an O’Reilly organizer and their main web guy, hoping the “attacks” were coming from him! They were nice about it (an change, Rasmus said, from previous years), and even stayed to hear more of the talk. Other sites scanned were from audience volunteers (at their own sites), and one shouldn’t have: his site had every vulnerability Rasmus’ scanner had a rule for. Fun stuff.

The afternoon tutorial was “TCP/IP Troubleshooting for System Administrators“. The speaker, Darren Hoch, was energetic, engaging and funny, making what could be a dry topic (some other word for entertaining). Most of it covered tcpdump and netstat (although using using some tools (or variants) that I hadn’t heard of: tethereal and dsniff), and using them in different case studies. The handout will be a useful reference. In all, some interesting information that can be used in everyday network issues, and a good refresher.